By vendor
Oalders vulnerabilities
Known CVEs affecting Oalders products, prioritized by severity, with SEC.co remediation and detection guidance.
1 published vulnerability
- CVE-2026-8829HIGH 7.5
HTML::Entities, a widely-used Perl library for encoding and decoding HTML entities, contains a use-after-free vulnerability in versions before 3.84. The flaw occurs in the internal _decode_entities function when processing specially crafted entity-reference strings. Under specific conditions—when the input string matches a cached entity value that contains a self-referential entity—the library can read from memory that has already been freed. This potentially exposes adjacent heap contents to an attacker, creating a limited information disclosure risk.